What Is a Cold Storage Policy at a Cryptocurrency Exchange?
When people talk about exchange security, the conversation eventually lands on one phrase: cold storage. It’s one of the more consequential, and least visible, policies a platform has, since it directly affects what happens to customer funds if the exchange is ever breached.
The short answer
A cold storage policy is a platform’s stated approach to keeping the majority of customer crypto funds in wallets that are not connected to the internet, rather than in “hot” wallets used for everyday transactions. Funds held offline are far harder for a remote attacker to reach, so the policy essentially describes how much of customers’ money is insulated from that kind of theft, versus how much stays more immediately accessible for withdrawals and trading.
Hot wallets versus cold storage
A hot wallet is connected to the internet so it can process deposits and withdrawals in real time — necessary for a platform to function day to day, but also the part of the system most exposed to remote hacking attempts. Cold storage refers to wallets kept offline entirely, often on hardware that’s never connected to a network, sometimes secured in physical vaults with multiple layers of access control. Because cold storage isn’t reachable over the internet, an attacker who compromises a platform’s servers generally can’t move funds sitting in cold storage the way they could funds sitting in a hot wallet.
What a cold storage policy typically describes
- The percentage split. Many platforms publish an approximate ratio, such as keeping the large majority of customer funds in cold storage and a smaller portion in hot wallets to cover expected withdrawal volume.
- How cold storage is secured. This can include the number of people required to authorize a transfer out of cold storage, geographic distribution of storage locations, and the physical security measures involved.
- How quickly cold funds can be accessed. Moving funds out of cold storage is intentionally slower than a hot wallet transaction, since that friction is part of what makes it secure — a tradeoff between security and speed.
Why this matters to an account holder
Cold storage policy is one of the more concrete signals of how seriously a platform treats custody of customer funds, since it directly limits how much could be stolen in a single hack of the platform’s live systems. It’s related to, but distinct from, proof of reserves, which addresses whether a platform actually holds the funds it claims to hold at all, and from an exchange’s insurance policy for custodial funds, which addresses what happens after a loss occurs rather than how likely that loss is to happen. It’s also worth checking whether the platform itself is properly registered, since a strong cold storage policy on paper means little if the entity publishing it isn’t operating under any real oversight. None of these policies, however, provide the kind of guaranteed protection that SIPC coverage provides for certain assets at a brokerage — crypto held at an exchange generally isn’t covered by FDIC or SIPC protection the way cash or securities can be.
What to weigh
A strong cold storage policy reduces one specific risk, theft from a live hack of the platform’s systems, but it doesn’t eliminate the broader risks that come with holding crypto on any exchange, including the platform’s own solvency, operational failures, and the simple fact that funds held by a third party depend on that third party behaving as promised. Reviewing a platform’s published cold storage practices alongside its proof of reserves and insurance disclosures gives a more complete picture than any single policy on its own.